Message ID | 20170721072333.15763.59729.stgit@localhost.localdomain |
---|---|
State | New |
Series | "netfilter: rework iptables containerization" |
Headers | show
Delivered-To: criupatchwork@gmail.com Received: from gmail-imap.l.google.com [209.85.233.108] by patchwork.criu.org with IMAP (fetchmail-6.3.26) for <root@localhost> (single-drop); Fri, 21 Jul 2017 09:24:23 +0200 (CEST) Received: by 10.100.160.39 with SMTP id n36csp311881pjc; Fri, 21 Jul 2017 00:24:15 -0700 (PDT) X-Received: by 10.84.167.2 with SMTP id c2mr7057409plb.371.1500621855911; Fri, 21 Jul 2017 00:24:15 -0700 (PDT) ARC-Seal: i=1; a=rsa-sha256; t=1500621855; cv=none; d=google.com; s=arc-20160816; b=XJOaWlBNg1OZuRTwH74AmUBIP75Sc+uXG/WqRbxudcCGdEPNj9RuXztjv4iUZa5VXO itPWdbWgrbaqYCTh16JwASgKqhMA6arzyQLsXjT2j1QRZOyFSz4h2ah30muSGtswS2os yIvbH+eSMgnjWf6UyhxonuviSmUXR708wEP/CTRdJDqTjCzS9kpxcFln8ML0xBDgmc5u aToSQLnikOHb+p9B4cNI0tTKqWpphiPKR767pyhRALGeSQPJJ1VZXgoAf65t9sPgerb3 eaqmPzuHVWXE86hWjfYb31M2TMKEY3xI+iP19WNo/0/Ft2VBSSU2t9P2dxYwIxqcOj+3 1L+w== ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816; h=errors-to:sender:content-transfer-encoding:list-subscribe:list-help :list-post:list-archive:list-unsubscribe:list-id:precedence:subject :spamdiagnosticmetadata:spamdiagnosticoutput:mime-version:user-agent :references:in-reply-to:message-id:date:to:from :arc-authentication-results; bh=GHYfnmSZGt92OzM1BQzumxVBpul4duS52JDn0gJlf+0=; b=sZJhwEX5nEMdaox4PvEVH9YMsE5LCWQd4ujg9QO/TVdBihAPcPKta89Nd/7RAj4SSO xb0ASCLSG7vkQH3/QGN0iGy84d6u0G/dff2Y70VWsXEdRjdsjOi4FzG45aPbOYUdtt/x ueyTJTuN8GL52HwImldNk2fsrhqen79nXkzbDn0r0hrCTFEE9Rxrf4t1suQBjRR3B8KT 3gRoUaQ06l0/aS5PS8xJNKfRUFlcYrW98f9TQ97KwiUGz8+9dIWMlSsBmE4DSMKudRVr Ez+aD9+RPwWXUMZ3PaLjj+JOcKnwOs2nwe9i3EmgdA3Zts+y1xcIvi4m7HCBmGlJ41mk xmsg== ARC-Authentication-Results: i=1; mx.google.com; spf=pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) smtp.mailfrom=devel-bounces@openvz.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=virtuozzo.com Return-Path: <devel-bounces@openvz.org> Received: from mail.openvz.org (mail.openvz.org. [195.214.232.140]) by mx.google.com with ESMTPS id i18si2814700pgn.612.2017.07.21.00.24.13 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 21 Jul 2017 00:24:15 -0700 (PDT) Received-SPF: pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) client-ip=195.214.232.140; Authentication-Results: mx.google.com; spf=pass (google.com: domain of devel-bounces@openvz.org designates 195.214.232.140 as permitted sender) smtp.mailfrom=devel-bounces@openvz.org; dmarc=fail (p=NONE sp=NONE dis=NONE) header.from=virtuozzo.com Received: from mail.openvz.org (localhost [127.0.0.1]) by mail.openvz.org (8.14.4/8.14.4) with ESMTP id v6L7NuGP016546; Fri, 21 Jul 2017 10:23:56 +0300 Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01lp0181.outbound.protection.outlook.com [213.199.154.181]) by mail.openvz.org (8.14.4/8.14.4) with ESMTP id v6L7No7d016525 for <devel@openvz.org>; Fri, 21 Jul 2017 10:23:51 +0300 Received: from AM4PR08CA0059.eurprd08.prod.outlook.com (2603:10a6:205:2::30) by AM5PR0801MB1730.eurprd08.prod.outlook.com (2603:10a6:203:3b::8) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.10; Fri, 21 Jul 2017 07:23:35 +0000 Received: from HE1EUR01FT013.eop-EUR01.prod.protection.outlook.com (2a01:111:f400:7e1f::204) by AM4PR08CA0059.outlook.office365.com (2603:10a6:205:2::30) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256_P256) id 15.1.1282.10 via Frontend Transport; Fri, 21 Jul 2017 07:23:35 +0000 Authentication-Results: spf=pass (sender IP is 195.214.232.25) smtp.mailfrom=virtuozzo.com; openvz.org; dkim=none (message not signed) header.d=none; openvz.org; dmarc=pass action=none header.from=virtuozzo.com; Received-SPF: Pass (protection.outlook.com: domain of virtuozzo.com designates 195.214.232.25 as permitted sender) receiver=protection.outlook.com; client-ip=195.214.232.25; helo=relay.sw.ru; Received: from relay.sw.ru (195.214.232.25) by HE1EUR01FT013.mail.protection.outlook.com (10.152.0.160) with Microsoft SMTP Server (version=TLS1_0, cipher=TLS_RSA_WITH_AES_256_CBC_SHA) id 15.1.1240.9 via Frontend Transport; Fri, 21 Jul 2017 07:23:34 +0000 Received: from localhost.localdomain (msk-vpn.virtuozzo.com [195.214.232.6]) by relay.sw.ru (8.13.4/8.13.4) with ESMTP id v6L7NXQA005790; Fri, 21 Jul 2017 10:23:33 +0300 (MSK) From: Stanislav Kinsburskiy <skinsbursky@virtuozzo.com> To: <devel@openvz.org> Date: Fri, 21 Jul 2017 11:23:33 +0400 Message-ID: <20170721072333.15763.59729.stgit@localhost.localdomain> In-Reply-To: <20170721070304.15763.48840.stgit@localhost.localdomain> References: <20170721070304.15763.48840.stgit@localhost.localdomain> User-Agent: StGit/0.17-dirty MIME-Version: 1.0 X-EOPAttributedMessage: 0 X-Forefront-Antispam-Report: CIP:195.214.232.25; IPV:CAL; SCL:-1; CTRY:RU; EFV:NLI; SFV:SKN; SFS:; DIR:INB; SFP:; SCL:-1; SRVR:AM5PR0801MB1730; H:relay.sw.ru; FPR:; SPF:None; LANG:en; X-Microsoft-Exchange-Diagnostics: 1; HE1EUR01FT013; 1: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 X-MS-PublicTrafficType: Email X-MS-Office365-Filtering-Correlation-Id: 9efbf54a-b012-4e4c-9354-08d4d0096605 X-Microsoft-Antispam: UriScan:; BCL:0; PCL:0; RULEID:(300000500095)(300135000095)(300000501095)(300135300095)(22001)(300000502095)(300135100095)(8251501002)(2017030254075)(300000503095)(300135400095)(2017052603031)(201703131423075)(201703031133081)(300000504095)(300135200095)(300000505095)(300135600095)(300000506095)(300135500095); SRVR:AM5PR0801MB1730; X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 3: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 X-MS-TrafficTypeDiagnostic: AM5PR0801MB1730: X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 25: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 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 31: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 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 20: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 X-Exchange-Antispam-Report-Test: UriScan:(215187933766430); X-Exchange-Antispam-Report-CFA-Test: BCL:0; PCL:0; RULEID:(100000700101)(100105000095)(100000701101)(100105300095)(100000702101)(100105100095)(9101521199)(601004)(2401047)(13021025)(8121501046)(13013025)(100000703101)(100105400095)(93006095)(93004095)(10201501046)(3002001)(100000704101)(100105200095)(100000705101)(100105500095); SRVR:AM5PR0801MB1730; BCL:0; PCL:0; RULEID:(100000800101)(100110000095)(100000801101)(100110300095)(100000802101)(100110100095)(100000803101)(100110400095)(100000804101)(100110200095)(100000805101)(100110500095); SRVR:AM5PR0801MB1730; X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 4: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 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 23:Do2vJYhnNj5N3V9OvVvgsHiBGQwCHr/aLW/vNGOXeS5oWYyVZi4XxxuQeElY3SFem4gcMPYtI4fC2/xUq8K0xB5tGLUzerXdM7TJwY5nnKJ2n2/ZFYU05t8KrAAosn2msmW76tfzcmh//Ew6sYbAKkZ9cSwMJpuif+e2xqcREisbVq/LBWLGFxwghMcn2l95 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 6:dBgtCj4Kl0v9uU8p+UpQx48BwK0DV/ZDrwy3zLGa040DRCLLhq5q72skYOlf+jRYzR/pE2CK+FmbHL+PgmDKBmr+Mz9qD2YQ15Kv7/iDwIRVnUtfmOBXrM4Nga477HCzIK6C0DWP6HoOp9akZcYa1MUGp2P0rsgvNdosw7Yo+vbHM/MGou2hRYSdmzc0rYfxrrAqAQ2pjOtoDWCP1RJidXCpv2vXj7hkDnNA/SjljoDn5AnLHjBHPJoowVMoxyJ8pm4zY6BVC7eO6wC8/zdrsCLcPsv/+4+T3XLrr6FZHiEsoo7BiguQbV2llW6V+Gu/LE1TshNUCcIbKcAMeME9c9FhRC7o714MxJeOAPn4EvWgVRA1wLQo/epyqN5ZAhbOQ597l55SrQQRfunlW90kZlER6T64rwkYR7LUWBrVyhuTeeHQFgRPJIScmNutzxwros3pWL+xxNZAf2yghw5XFJkoDXlh6txJSXnS1cRMO1Bcqo7ZuAlrz/xqhzWmSW9CpTcNB4MXf8yS5OBcZVSkML++LCgMMwyz5kojb0JnyR0UytOnbYytOMgX6nQWL6/hiCQfvNHxUyFmKRvjg8ltq+66j/ZsEviLHeh2yMNxzMvzjEuahctzAuroqbIw2uDAZ6PgbcgC2w3b8VCanUzz6K3vc9cDYC0a8a1g64Jus88BR/gHYidbBz4USkjjoahbBJvlKxceS+OsXMe2oOt+jsNVItsoSNawp2DCN62RxiKw/541pWclLWQINNh1naZEoVzSwG8TvxUMLizo3Kt/S7ge2RuFcK6YDAud3/BoHUspnznlF49cailV5TB1Zix0apXSfXhfZT64s1ZR6JsOkaE1iZWx/c8lcR5r6XGXlAwhSJaeOqtbCdFpyhGhcigbJ8nY/5ra3xJarb1cnGKsWQ== X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 5: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; 24:/LUUFkooqaPinB5tFam6D8V4YGuWL0q+Re8uQfOVfCEoqWaw1wMgJos4d9dTuXufQx0WD7YavoPvVCAxrK4TAMhxZ/ujDqDoxn7gSnkLwKI= SpamDiagnosticOutput: 1:2 SpamDiagnosticMetadata: 2b2090aae5154f77b71484475de18b04 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 7: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 X-Microsoft-Exchange-Diagnostics: 1; AM5PR0801MB1730; 20:eAnNgLGtgv6+bJYDoFbf6Gb+ziniaitWCiQUSmReJhiUgcr7rlExUnrMeRY14M5guAR+8weoq6Me730XGhezgxCkswkFqJrDLpJW8INz5VgSjhPzteB/8qm8OBjkzrl4CXtOt7AhLnO43PMhfPF4aUwwkMO4d1wR6529wlbR//g= X-OriginatorOrg: virtuozzo.com X-MS-Exchange-CrossTenant-OriginalArrivalTime: 21 Jul 2017 07:23:34.5844 (UTC) X-MS-Exchange-CrossTenant-Id: 0bc7f26d-0264-416e-a6fc-8352af79c58f X-MS-Exchange-CrossTenant-OriginalAttributedTenantConnectingIp: TenantId=0bc7f26d-0264-416e-a6fc-8352af79c58f; Ip=[195.214.232.25]; Helo=[relay.sw.ru] X-MS-Exchange-CrossTenant-FromEntityHeader: HybridOnPrem X-MS-Exchange-Transport-CrossTenantHeadersStamped: AM5PR0801MB1730 X-MS-Exchange-CrossPremises-OriginalClientIPAddress: 195.214.232.25 X-MS-Exchange-CrossPremises-SCL: -1 X-MS-Exchange-CrossPremises-AuthSource: HE1EUR01FT013.eop-EUR01.prod.protection.outlook.com X-MS-Exchange-CrossPremises-AuthAs: Anonymous X-MS-Exchange-CrossPremises-TransportTrafficType: Email X-MS-Exchange-CrossPremises-TransportTrafficSubType: X-MS-Exchange-CrossPremises-Antispam-ScanContext: DIR:Originating; SFV:SKN; SKIP:0; X-MS-Exchange-CrossPremises-Processed-By-Journaling: Journal Agent X-OrganizationHeadersPreserved: AM5PR0801MB1730.eurprd08.prod.outlook.com Subject: [Devel] [PATCH 5/5] netfilter: always create netfilter per-net objects for ipv4/ipv6 X-BeenThere: devel@openvz.org X-Mailman-Version: 2.1.12 Precedence: list List-Id: OpenVZ development <devel.openvz.org> List-Unsubscribe: <https://lists.openvz.org/mailman/options/devel>, <mailto:devel-request@openvz.org?subject=unsubscribe> List-Archive: <http://lists.openvz.org/pipermail/devel/> List-Post: <mailto:devel@openvz.org> List-Help: <mailto:devel-request@openvz.org?subject=help> List-Subscribe: <https://lists.openvz.org/mailman/listinfo/devel>, <mailto:devel-request@openvz.org?subject=subscribe> Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: devel-bounces@openvz.org Errors-To: devel-bounces@openvz.org |
diff --git a/net/ipv4/netfilter/ip_tables.c b/net/ipv4/netfilter/ip_tables.c index 3ad1c67..fe40773 100644 --- a/net/ipv4/netfilter/ip_tables.c +++ b/net/ipv4/netfilter/ip_tables.c @@ -2081,8 +2081,6 @@ static int __net_init ip_tables_net_init(struct net *net) { int res; - if (!net_ipt_permitted(net, VE_IP_IPTABLES)) - return 0; res = xt_proto_init(net, NFPROTO_IPV4); if (!res) net_ipt_module_set(net, VE_IP_IPTABLES); @@ -2091,9 +2089,6 @@ static int __net_init ip_tables_net_init(struct net *net) static void __net_exit ip_tables_net_exit(struct net *net) { - if (!net_is_ipt_module_set(net, VE_IP_IPTABLES)) - return; - xt_proto_fini(net, NFPROTO_IPV4); net_ipt_module_clear(net, VE_IP_IPTABLES); diff --git a/net/ipv6/netfilter/ip6_tables.c b/net/ipv6/netfilter/ip6_tables.c index 9d431c7..e08311a 100644 --- a/net/ipv6/netfilter/ip6_tables.c +++ b/net/ipv6/netfilter/ip6_tables.c @@ -2078,9 +2078,6 @@ static int __net_init ip6_tables_net_init(struct net *net) { int res; - if (!net_ipt_permitted(net, VE_IP_IPTABLES6)) - return 0; - res = xt_proto_init(net, NFPROTO_IPV6); if (!res) net_ipt_module_set(net, VE_IP_IPTABLES6); @@ -2089,9 +2086,6 @@ static int __net_init ip6_tables_net_init(struct net *net) static void __net_exit ip6_tables_net_exit(struct net *net) { - if (!net_is_ipt_module_set(net, VE_IP_IPTABLES6)) - return; - xt_proto_fini(net, NFPROTO_IPV6); net_ipt_module_clear(net, VE_IP_IPTABLES6);
Their dentries won't be visible due to absence of S_ISVTX bit (if nefilter is disabled). Also they won't be accessible due to checks in ip_{get,set}sockopt. But all this applies to our CTs only. CRIU will have access to all this stuff by joining network namespace, thus being able to suspend and restore such containers with netfilter disabled. https://jira.sw.ru/browse/PSBM-68767 Signed-off-by: Stanislav Kinsburskiy <skinsbursky@virtuozzo.com> --- net/ipv4/netfilter/ip_tables.c | 5 ----- net/ipv6/netfilter/ip6_tables.c | 6 ------ 2 files changed, 11 deletions(-)